CVE: Common Vulnerabilities and Exposures

Required CVE Record Information

Description

app/views/timelog/_form.html.erb in Redmine before 2.6.8, 3.0.x before 3.0.6, and 3.1.x before 3.1.2 allows remote attackers to obtain sensitive information about subjects of issues by viewing the time logging form.

Product Status

Learn more

Information not provided

References 4 Total

https://www.redmine.org/issues/21150
external site
http://www.redmine.org/news/102
external site
debian.org: DSA-3529
external site
vendor-advisory
https://github.com/redmine/redmine/commit/c096dde88ff02872ba35edc4dc403c80a7867b5c
external site

Updated: 2024-08-06

This container includes required additional information provided by the CVE Program for this vulnerability.

References 4 Total

https://www.redmine.org/issues/21150
external site
x_transferred
http://www.redmine.org/news/102
external site
x_transferred
debian.org: DSA-3529
external site
vendor-advisoryx_transferred
https://github.com/redmine/redmine/commit/c096dde88ff02872ba35edc4dc403c80a7867b5c
external site
x_transferred

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: MITRE Corporation

Description

Product Status

References 4 Total

CVE Program

References 4 Total